There is no way hardware supported way to do this on mainstream Intel / AMD. Yes it's possible to make a chip that could do it. No it's not reasonable, it would destroy performance without really helping that much. If you are facing an adversary powerful enough to have access to your RAM sticks, it's cheaper and more effective to self destruct. It's definitely paranoid, in the sense that it's crazy and ridiculous.
If you really want to encrypt part of memory you probably could patch a kernel to reserve some ring 0 restricted registers to store keys. But the hardware just does not support running in a full encrypted way, there are certain things that must be put in main memory unencrypted for the processor to use. > On Mar 11, 2017, at 08:44, Luke Small <lukensm...@gmail.com> wrote: > > Is there a way to encrypt memory and keep the key on the CPU like a > transparent partition so that if the ram cards are physically accessed, hey > can't be read? Is it reasonable?
